| |||||||||||||
suid-binary vulnerabilitiessuid-binary vulnerabilitiesPosted Oct 28, 2010 17:05 UTC (Thu) by jreiser (subscriber, #11027)In reply to: suid-binary vulnerabilities by RobSeace Parent article: Two glibc vulnerabilities why isn't this done if it's possible? There are [have been] bigger fish to fry.
(Log in to post comments)
suid-binary vulnerabilities Posted Oct 28, 2010 18:53 UTC (Thu) by RobSeace (subscriber, #4435) [Link]
Oh, and I just realized that if a system were to do this for all setuid binaries,
then it would be very important for the linker to treat these "enhanced capability" programs just as it would setuid/setgid programs... Ie: don't allow $LD_PRELOAD and such... Otherwise, of course, it would be trivial for anyone to gain their enhanced capabilities... Which, while not as bad as gaining root, is still not something you want to make trivially easy to do...
suid-binary vulnerabilities Posted Oct 28, 2010 19:55 UTC (Thu) by spender (subscriber, #23067) [Link]
This is exactly what the AT_SECURE auxv entry already does.
-Brad
|
|||||||||||||